Transport Layer Security (TLS) Implementation for Secured MN- HA Communication in Mobile IPv6
نویسنده
چکیده
Mobile IPv6 usually use the IPsec/IKEv2 to secure Mobile Node (MN) and Home Agent (HA) communication. The implementation of IPsec/IKEv2 with MIPv6 is complex because it requires a tight coupling between MIPv6 protocol part and the IPsec/IKEv2 part of the IP stack. This paper proposes a security mechanism which uses Transport Layer Security (TLS) for establishing Keying Material and other bootstrapping parameters required to protect Mobile IPv6 signaling and data traffic between Mobile Node and Home Agent. This mechanism also supports Dual-Stack Mobile IPv6 which IPsec/IKEv2 finds it difficult to implement. TLS based establishment of Mobile IPv6 security associations compared to IKEv2 is the ease of implementation while providing an equivalent level of security. Keyword: TLS, Mobile IPv6, IKEv2, IPsec, AAA
منابع مشابه
RFC 6618 TLS - Based MIPv
Mobile IPv6 signaling between a Mobile Node (MN) and its Home Agent (HA) is secured using IPsec. The security association (SA) between an MN and the HA is established using Internet Key Exchange Protocol (IKE) version 1 or 2. The security model specified for Mobile IPv6, which relies on IKE/IPsec, requires interaction between the Mobile IPv6 protocol component and the IKE/IPsec module of the IP...
متن کاملTask Force ( IETF )
Mobile IPv6 signaling between a Mobile Node (MN) and its Home Agent (HA) is secured using IPsec. The security association (SA) between an MN and the HA is established using Internet Key Exchange Protocol (IKE) version 1 or 2. The security model specified for Mobile IPv6, which relies on IKE/IPsec, requires interaction between the Mobile IPv6 protocol component and the IKE/IPsec module of the IP...
متن کاملA Robust Secured Mobile IPv6 Mechanism for Multimedia Convergence Services
Mobile IPv6 has been developed to enable mobility in IP networks for mobile terminals. Mobile IPv6 security standardization is still ongoingand security issues are one of the primary considerations that need to be address. In this paper we proposed a mechanism that if will be adopted;MIPv6 will have a better security. This proposed new security mechanism for Mobile IPv6 which to make the RR met...
متن کاملDetecting Bot Networks Based On HTTP And TLS Traffic Analysis
Abstract— Bot networks are a serious threat to cyber security, whose destructive behavior affects network performance directly. Detecting of infected HTTP communications is a big challenge because infected HTTP connections are clearly merged with other types of HTTP traffic. Cybercriminals prefer to use the web as a communication environment to launch application layer attacks and secretly enga...
متن کاملSecured Route Optimization and Micro-mobility with Enhanced Handover Scheme in Mobile IPv6 Networks
خسارات وارد شده به شبکه گاز شهری در یک زلزله میتواند زیانهای زیادی از جمله خسارت ناشی از آتشسوزی در شبکه زیر ساخت، و خسارت ناشی از قطع خدمات رسانی، تعمیر و تعویض اعضای شبکه، را در بر داشته باشد. در این مقاله یک مدل آتشسوزی پیشنهاد شده است. مدل پیشنهادی در یک مدل نیمه احتمالاتی مرسوم برای برآورد خسارتهای مختلف ناشی از آسیب دیدن شبکه گاز شهری، به کار برده شده است. هدف از این کار توسعه یک ابز...
متن کامل